CA Datacom using RACF external security getting return code 15 (139) security violation even though all the RACF security rules are defined.In Dataquery getting error DQ804E - YOU ARE NOT AUTHORIZED TO ACCESS THIS TABLE

Environment:

z/OS and RACF security

Resolution:

With RACF, the class names are translated to have a @ in the 3rd position. So for example, class DTTABLE becomes DT@ABLE. This is done in CA Common Services (CCS) component CAISSF (Standard Security Facility) .

For CCS Version 14.1 and above this is done in the CAS9 startup JCL with a CAIRACF DD statement.

​//CAIRACF DD DISP=SHR,DSN=CAI.CAW0OPTN(RACFLIST)

For CCS releases prior to 14.1, the CAS9SAFC source needs to be modified and then reassembled and linked.